Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8cY9d2L5qdqg3xT8vC2-OTH44nA.roa
File: 8cY9d2L5qdqg3xT8vC2-OTH44nA.roa (raw, json)
Hash identifier: ntUKhmIdVpiL+Qw8khaJnyc7/wP6Yi4ZnPZdr8uBx5E=
Subject key identifier: F1:C6:3D:77:62:F9:A9:DA:A0:DF:14:FC:BC:2D:BE:39:31:F8:E2:70
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: E206DB
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8cY9d2L5qdqg3xT8vC2-OTH44nA.roa
Signing time: Fri 29 Apr 2022 09:58:27 +0000
ROA not before: Fri 29 Apr 2022 09:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33922
IP address blocks: 84.32.116.0/23 maxlen: 24
84.32.114.0/23 maxlen: 24
88.216.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14812891 (0xe206db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 29 09:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1c63d7762f9a9daa0df14fcbc2dbe3931f8e270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a8:27:6b:2c:8e:70:dc:98:d3:ab:4f:bf:41:
43:fb:4f:1c:ee:3b:d5:42:18:40:a0:4a:eb:ad:f0:
34:a9:ab:74:f0:2b:ef:31:2b:d3:8b:56:dc:b0:21:
2d:f4:36:8f:b6:51:03:b6:bb:36:61:b0:05:61:5e:
a5:e1:40:3b:69:2c:39:ca:b1:21:7c:15:7b:48:20:
79:5e:61:db:4d:03:ad:2e:65:df:71:b9:68:d7:fe:
8c:64:6c:2f:67:01:0b:22:0d:5e:c9:04:65:f5:e5:
3a:96:28:9c:87:ce:f7:17:43:09:3c:d4:cc:0c:6c:
92:48:2a:18:d2:d0:38:ff:8c:77:90:f7:77:d2:7a:
e0:07:02:58:b1:fa:dc:72:22:46:99:9b:e6:37:6f:
67:74:72:70:8e:a3:5a:be:aa:64:32:8d:c6:a3:db:
93:96:ef:47:7d:d5:d5:b3:a1:65:ac:cc:0c:9d:ef:
ae:70:74:e9:68:06:89:ec:c3:29:4d:c2:b4:5f:f6:
28:c7:37:af:23:75:f5:c6:b9:9c:8a:a2:29:02:6d:
8b:5d:9f:bf:d3:7b:f3:30:a3:48:0e:65:1c:cf:ec:
a7:11:de:3a:13:94:0b:0e:6c:3e:85:7d:9b:63:ed:
d4:4a:7b:1d:85:10:a8:8f:30:f9:92:4e:b0:e3:bf:
8b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C6:3D:77:62:F9:A9:DA:A0:DF:14:FC:BC:2D:BE:39:31:F8:E2:70
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8cY9d2L5qdqg3xT8vC2-OTH44nA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.114.0-84.32.117.255
88.216.148.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:13:f9:f9:e9:44:27:50:1a:ac:95:41:96:13:30:63:e8:c0:
6c:45:c5:a1:b9:21:b3:e9:1d:7f:4e:d3:99:1a:22:d3:1c:eb:
91:97:15:9b:b3:55:83:b3:a5:52:83:f0:eb:0c:f8:8d:09:c6:
2b:bd:3b:84:fe:c5:e0:61:50:4e:b4:eb:4e:11:c4:2c:72:2d:
c4:b1:48:60:fe:1d:f0:0c:b8:dd:e0:e0:d0:70:b8:e5:97:bc:
a3:ae:ab:63:ed:38:e9:c9:1f:e2:5a:43:c4:b6:92:a0:2d:0f:
f9:eb:4f:ba:a5:99:61:92:95:cb:06:df:23:c9:6b:d0:57:1b:
4c:bd:ba:b7:db:aa:19:ed:9a:d4:f8:5d:41:43:e0:79:63:9f:
ca:7b:51:25:80:03:5b:76:c6:ae:b2:aa:06:21:aa:49:a0:bd:
50:64:1c:99:af:4c:0b:1c:d3:38:71:89:be:ef:1c:02:63:a3:
c7:eb:87:9c:fc:49:4b:55:71:ff:bd:b5:06:e3:db:dc:af:a7:
22:79:cb:9e:ef:39:a0:e4:6f:e8:36:5a:51:34:28:37:d7:6a:
13:71:63:c8:16:d3:83:53:71:ea:49:70:40:b7:10:31:c7:02:
48:5d:8b:63:e1:98:b1:1c:7c:e9:96:b2:f8:c9:15:7c:a8:ab:
64:c2:80:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEAOIG2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZmJkNDVmY2UzNTZlMmE2NWYxZTRkMWRhZjc4MTRiNmQ2YmRhM2M1MB4XDTIyMDQy
OTA5NTgyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjFjNjNkNzc2MmY5
YTlkYWEwZGYxNGZjYmMyZGJlMzkzMWY4ZTI3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJWoJ2ssjnDcmNOrT79BQ/tPHO471UIYQKBK663wNKmrdPAr
7zEr04tW3LAhLfQ2j7ZRA7a7NmGwBWFepeFAO2ksOcqxIXwVe0ggeV5h200DrS5l
33G5aNf+jGRsL2cBCyINXskEZfXlOpYonIfO9xdDCTzUzAxskkgqGNLQOP+Md5D3
d9J64AcCWLH63HIiRpmb5jdvZ3RycI6jWr6qZDKNxqPbk5bvR33V1bOhZazMDJ3v
rnB06WgGiezDKU3CtF/2KMc3ryN19ca5nIqiKQJti12fv9N78zCjSA5lHM/spxHe
OhOUCw5sPoV9m2Pt1Ep7HYUQqI8w+ZJOsOO/i/kCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBTxxj13Yvmp2qDfFPy8Lb45MfjicDAfBgNVHSMEGDAWgBRPvUX841bipl8e
TR2veBS21r2jxTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Q3MUZfT05XNHFaZkhrMGRyM2dVdHRhOW84VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFjMy8x
LzhjWTlkMkw1cWRxZzN4VDh2QzItT1RINDRuQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
Mzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFjMy8xL1Q3MUZfT05XNHFa
ZkhrMGRyM2dVdHRhOW84VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFDAMAwQBVCByAwQBVCB0AwQAWNiUMA0G
CSqGSIb3DQEBCwUAA4IBAQCME/n56UQnUBqslUGWEzBj6MBsRcWhuSGz6R1/TtOZ
GiLTHOuRlxWbs1WDs6VSg/DrDPiNCcYrvTuE/sXgYVBOtOtOEcQsci3EsUhg/h3w
DLjd4ODQcLjll7yjrqtj7TjpyR/iWkPEtpKgLQ/560+6pZlhkpXLBt8jyWvQVxtM
vbq326oZ7ZrU+F1BQ+B5Y5/Ke1ElgANbdsausqoGIapJoL1QZByZr0wLHNM4cYm+
7xwCY6PH64ec/ElLVXH/vbUG49vcr6ciecue7zmg5G/oNlpRNCg312oTcWPIFtOD
U3HqSXBAtxAxxwJIXYtj4ZixHHzplrL4yRV8qKtkwoDz
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org